alters PEM-encoded X.509 certificates by adding a subjectAltName extension
containing an identity used by the signature-based authentication schemes
of the ISAKMP protocol.
After the addition the certificate will be signed
once again with the supplied CA signing key.
The options are as follows:
If given, the
option specifies the type of the given identity.
Currently
and
are recognized.
The default is
The
option takes an argument which is the identity to put into the
subjectAltName field of the certificate.
If the identity-type is
this argument should be an IPv4 address in dotted decimal notation.
The
option specifies the key used for signing the certificate once the
subjectAltName extension has been added.
The key is specified by
the filename where it is stored in PEM format.
